Answer: Configure Workload Identity and service accounts to be used by the application platform.

The question focuses on securing connectivity from a gaming application platform running on GKE to Google Cloud services, emphasizing streamlined processes and Google-recommended practices. Option A (Workload Identity) is the correct choice because it is Google's recommended method for GKE workloads to securely access Google Cloud services. Workload Identity allows Kubernetes service accounts to impersonate Google Cloud service accounts, eliminating the need to manage and distribute service account keys, which enhances security and simplifies management. The community discussion strongly supports A, with the highest upvoted comments (e.g., 34 upvotes) citing Google documentation that explicitly recommends Workload Identity for GKE. Options B, C, and D involve Kubernetes Secrets or external solutions like HashiCorp Vault, which are more suitable for storing application secrets (e.g., API keys) rather than securing connectivity to Google Cloud services. These alternatives add complexity without addressing the core requirement of streamlined, identity-based access to Google Cloud APIs.

Author: LeetQuiz Editorial Team